Skip to content
Snippets Groups Projects

Avoid buffer overflow with long filenames in write_auth_file()

Merged Alan Coopersmith requested to merge alanc/xauth:issue-7 into master

Aligns buffer size for filenames with XauLockAuth in libXau

Closes: #7 (closed) ("Buffer overflow when constructing tmp_nam")
Reported-by: Mingjie Shen (@szsam)
Reviewed-by: Olivier Fourdan ofourdan@redhat.com
Signed-off-by: Alan Coopersmith alan.coopersmith@oracle.com

Also includes commits for:

  • Use remove() instead of unlink() to remove files
  • get_displayname_auth: replace sprintf() with snprintf()

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
  • Loading
Please register or sign in to reply
Loading